100 days of DevOps - Day 13 issue

idan-pinto · April 2, 2026, 8:58am

Hey was trying to solve it but for some reason it was failed, commands used on all 3 app servers - sudo yum install -y iptables iptables-services
sudo iptables -A INPUT -p tcp --dport 5003 -s 10.244.97.169 -j ACCEPT
sudo iptables -A INPUT -p tcp --dport 5003 -j REJECT
sudo iptables-save
attaching a screenshots of the load balancer server curl command to stapp01 and jumpserver curl command that’s being blocked
Can you check why?

MIQDAD · April 2, 2026, 9:50am

github.com

MiqdadProjects/kodekloud-eng-100-days-devops/blob/main/DAY13/task-13-firewall-restrict-apache-port.md

**🌟 Task 13 - Configure Firewall to Restrict Apache Port 8088 Access**

**📌 Task Description**

Due to security concerns, the **xFusionCorp Industries** team has decided to add a security layer by configuring **iptables firewalls** on all app servers in **Stratos Datacenter**.

**Requirements:**
1. Install **iptables** and all dependencies on all app servers
2. Block incoming traffic on **port 8088** (Apache port) on all app servers except from the **LBR host** (172.16.238.14)
3. Ensure the firewall rules **persist after system reboot**

👉 **Your task:** Configure selective port access using iptables to allow only the load balancer to reach Apache on port 8088.

💡 **Note:** Perform these steps on **all app servers**: stapp01, stapp02, stapp03.

---

## 🔹 Step 1: Switch to root user

```bash

This file has been truncated. show original

Alistair_KodeKloud · April 3, 2026, 9:07pm

You have to tell iptables-save where to save the rules to, or it just prints output to the console. For Red Hat/CentOS systems like this, that is /etc/sysconfig/iptables

So

iptables-save > /etc/sysconfig/iptables